← Back

Ahsanriaz26gmailcom

ahsanriaz26gmailcom

36 CVEs • 2 products

Products (2)

Click to collapse
Toggle
Sales And Inventory System
sales_and_inventory_system
31 CVEs
Inventory System
inventory_system
5 CVEs

CVEs (36)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2026-30562
1Ahsanriaz26gmailcom
1Sales And Inventory System
Apr 1, 2026
Mar 30, 2026
N/A· v4
9.3 CRITICAL· v3
N/A· v2
A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the add_stock.php file via the "msg" parameter. The application fails to sanit...Show more
A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the add_stock.php file via the "msg" parameter. The application fails to sanitize the input, allowing remote attackers to inject arbitrary web script or HTML via a crafted URL.Show less
CVE-2026-30561
1Ahsanriaz26gmailcom
1Sales And Inventory System
Apr 6, 2026
Mar 30, 2026
N/A· v4
6.1 MEDIUM· v3
N/A· v2
A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the add_purchase.php file via the "msg" parameter. The application fails to sa...Show more
A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the add_purchase.php file via the "msg" parameter. The application fails to sanitize the input, allowing remote attackers to inject arbitrary web script or HTML via a crafted URL.Show less
CVE-2026-30560
1Ahsanriaz26gmailcom
1Sales And Inventory System
Apr 6, 2026
Mar 30, 2026
N/A· v4
6.1 MEDIUM· v3
N/A· v2
A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the add_supplier.php file via the "msg" parameter. The application fails to sa...Show more
A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the add_supplier.php file via the "msg" parameter. The application fails to sanitize the input, allowing remote attackers to inject arbitrary web script or HTML via a crafted URL.Show less
CVE-2026-30559
1Ahsanriaz26gmailcom
1Sales And Inventory System
Apr 6, 2026
Mar 30, 2026
N/A· v4
6.1 MEDIUM· v3
N/A· v2
A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the add_sales.php file via the "msg" parameter. The application fails to sanit...Show more
A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the add_sales.php file via the "msg" parameter. The application fails to sanitize the input, allowing remote attackers to inject arbitrary web script or HTML via a crafted URL.Show less
CVE-2026-30558
1Ahsanriaz26gmailcom
1Sales And Inventory System
Apr 6, 2026
Mar 30, 2026
N/A· v4
6.1 MEDIUM· v3
N/A· v2
A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the add_customer.php file via the "msg" parameter. The application fails to sa...Show more
A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the add_customer.php file via the "msg" parameter. The application fails to sanitize the input, allowing remote attackers to inject arbitrary web script or HTML via a crafted URL.Show less
CVE-2026-30557
1Ahsanriaz26gmailcom
1Sales And Inventory System
Apr 6, 2026
Mar 30, 2026
N/A· v4
6.1 MEDIUM· v3
N/A· v2
A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the add_category.php file via the "msg" parameter. The application fails to sa...Show more
A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the add_category.php file via the "msg" parameter. The application fails to sanitize the input, allowing remote attackers to inject arbitrary web script or HTML via a crafted URL.Show less
CVE-2026-30556
1Ahsanriaz26gmailcom
1Sales And Inventory System
Apr 1, 2026
Mar 30, 2026
N/A· v4
6.1 MEDIUM· v3
N/A· v2
A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the index.php file via the "msg" parameter. The application fails to sanitize...Show more
A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the index.php file via the "msg" parameter. The application fails to sanitize the input, allowing remote attackers to inject arbitrary web script or HTML via a crafted URL.Show less
CVE-2026-30566
1Ahsanriaz26gmailcom
1Sales And Inventory System
Apr 1, 2026
Mar 30, 2026
N/A· v4
6.1 MEDIUM· v3
N/A· v2
A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the view_customers.php file via the "limit" parameter. The application fails t...Show more
A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the view_customers.php file via the "limit" parameter. The application fails to sanitize the input, allowing remote attackers to inject arbitrary web script or HTML via a crafted URL.Show less
CVE-2026-30565
1Ahsanriaz26gmailcom
1Sales And Inventory System
Apr 1, 2026
Mar 30, 2026
N/A· v4
6.1 MEDIUM· v3
N/A· v2
A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the view_supplier.php file via the "limit" parameter. The application fails to...Show more
A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the view_supplier.php file via the "limit" parameter. The application fails to sanitize the input, allowing remote attackers to inject arbitrary web script or HTML via a crafted URL.Show less
CVE-2026-30564
1Ahsanriaz26gmailcom
1Sales And Inventory System
Apr 1, 2026
Mar 30, 2026
N/A· v4
6.1 MEDIUM· v3
N/A· v2
A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the view_payments.php file via the "limit" parameter. The application fails to...Show more
A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the view_payments.php file via the "limit" parameter. The application fails to sanitize the input, allowing remote attackers to inject arbitrary web script or HTML via a crafted URL.Show less
CVE-2026-30563
1Ahsanriaz26gmailcom
1Sales And Inventory System
Apr 1, 2026
Mar 30, 2026
N/A· v4
6.1 MEDIUM· v3
N/A· v2
A Stored Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the update_details.php file. The application fails to sanitize the "website" para...Show more
A Stored Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the update_details.php file. The application fails to sanitize the "website" parameter provided in a POST request. This allows authenticated attackers to inject arbitrary web script or HTML that is stored in the database and executed whenever the store details page is accessed.Show less
CVE-2026-30568
1Ahsanriaz26gmailcom
1Inventory System
Mar 30, 2026
Mar 27, 2026
N/A· v4
4.8 MEDIUM· v3
N/A· v2
A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0 in in the view_purchase.php file via the "limit" parameter. The application fails to sanitize the input, allowi...Show more
A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0 in in the view_purchase.php file via the "limit" parameter. The application fails to sanitize the input, allowing remote attackers to inject arbitrary web script or HTML via a crafted URL.Show less
CVE-2026-30567
1Ahsanriaz26gmailcom
1Inventory System
May 10, 2026
Mar 27, 2026
N/A· v4
6.1 MEDIUM· v3
N/A· v2
A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0 in the view_product.php file via the "limit" parameter. The application fails to sanitize the input, allowing r...Show more
A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0 in the view_product.php file via the "limit" parameter. The application fails to sanitize the input, allowing remote attackers to inject arbitrary web script or HTML via a crafted URL.Show less
CVE-2026-30571
1Ahsanriaz26gmailcom
1Inventory System
Apr 6, 2026
Mar 27, 2026
N/A· v4
6.1 MEDIUM· v3
N/A· v2
A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0 in the view_category.php file via the "limit" parameter. The application fails to sanitize the input, allowing...Show more
A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0 in the view_category.php file via the "limit" parameter. The application fails to sanitize the input, allowing remote attackers to inject arbitrary web script or HTML via a crafted URL.Show less
CVE-2026-30570
1Ahsanriaz26gmailcom
1Inventory System
Apr 6, 2026
Mar 27, 2026
N/A· v4
6.1 MEDIUM· v3
N/A· v2
A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0 in the view_sales.php file via the "limit" parameter. The application fails to sanitize the input, allowing rem...Show more
A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0 in the view_sales.php file via the "limit" parameter. The application fails to sanitize the input, allowing remote attackers to inject arbitrary web script or HTML via a crafted URLShow less
CVE-2026-30569
1Ahsanriaz26gmailcom
1Inventory System
Apr 6, 2026
Mar 27, 2026
N/A· v4
6.1 MEDIUM· v3
N/A· v2
A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the view_stock_availability.php file via the "limit" parameter. The applicatio...Show more
A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0. The vulnerability is located in the view_stock_availability.php file via the "limit" parameter. The application fails to sanitize the input, allowing remote attackers to inject arbitrary web script or HTML via a crafted URL.Show less
CVE-2026-4826
1Ahsanriaz26gmailcom
1Sales And Inventory System
Apr 29, 2026
Mar 26, 2026
2.1 LOW· v4
8.8 HIGH· v3
6.5 MEDIUM· v2
A vulnerability was determined in SourceCodester Sales and Inventory System 1.0. This vulnerability affects unknown code of the file /update_stock.php of the component HTTP GET Parameter Handler. This manipulation of the...Show more
A vulnerability was determined in SourceCodester Sales and Inventory System 1.0. This vulnerability affects unknown code of the file /update_stock.php of the component HTTP GET Parameter Handler. This manipulation of the argument sid causes sql injection. Remote exploitation of the attack is possible. The exploit has been publicly disclosed and may be utilized.Show less
CVE-2026-4825
1Ahsanriaz26gmailcom
1Sales And Inventory System
Apr 29, 2026
Mar 25, 2026
2.1 LOW· v4
6.5 MEDIUM· v3
6.5 MEDIUM· v2
A vulnerability was found in SourceCodester Sales and Inventory System 1.0. This affects an unknown part of the file /update_sales.php of the component HTTP GET Parameter Handler. The manipulation of the argument sid res...Show more
A vulnerability was found in SourceCodester Sales and Inventory System 1.0. This affects an unknown part of the file /update_sales.php of the component HTTP GET Parameter Handler. The manipulation of the argument sid results in sql injection. The attack may be launched remotely. The exploit has been made public and could be used.Show less
CVE-2026-4781
1Ahsanriaz26gmailcom
1Sales And Inventory System
Apr 29, 2026
Mar 25, 2026
2.1 LOW· v4
8.8 HIGH· v3
6.5 MEDIUM· v2
A flaw has been found in SourceCodester Sales and Inventory System 1.0. The affected element is an unknown function of the file update_purchase.php of the component HTTP GET Parameter Handler. Executing a manipulation of...Show more
A flaw has been found in SourceCodester Sales and Inventory System 1.0. The affected element is an unknown function of the file update_purchase.php of the component HTTP GET Parameter Handler. Executing a manipulation of the argument sid can lead to sql injection. The attack may be performed from remote. The exploit has been published and may be used.Show less
CVE-2026-4780
1Ahsanriaz26gmailcom
1Sales And Inventory System
Apr 29, 2026
Mar 25, 2026
2.1 LOW· v4
8.8 HIGH· v3
6.5 MEDIUM· v2
A vulnerability was detected in SourceCodester Sales and Inventory System 1.0. Impacted is an unknown function of the file update_out_standing.php of the component HTTP GET Parameter Handler. Performing a manipulation of...Show more
A vulnerability was detected in SourceCodester Sales and Inventory System 1.0. Impacted is an unknown function of the file update_out_standing.php of the component HTTP GET Parameter Handler. Performing a manipulation of the argument sid results in sql injection. The attack is possible to be carried out remotely. The exploit is now public and may be used.Show less